Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

EUVD
EUVDadded 2026/06/09 12:33 a.m.6 views

EUVD-2026-35220

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS6AI score0.00206EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/06/08 11:27 p.m.4 views

CVE-2026-11662

Type Confusion in Bindings in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00346EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2026/06/05 12:31 a.m.9 views

EUVD-2026-34502

Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00354EPSS
Exploits0References3
EUVD
EUVDadded 2026/06/05 12:31 a.m.6 views

EUVD-2026-34395

Heap buffer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.4AI score0.00364EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/06/04 11:4 p.m.7 views

CVE-2026-11000

Use after free in Fonts in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.2AI score0.00351EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:3 p.m.9 views

CVE-2026-10963

CVE-2026-10963 : Integer overflow in V8 (Chromium) affects Google Chrome before 149.0.7827.53. A crafted HTML page could allow a remote attacker to execute arbitrary code inside the browser sandbox. Affected component: V8 in Chrome; root cause: integer overflow. Impact: high, including potential ...

8.8CVSS6.3AI score0.00351EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVEadded 2026/05/30 2:17 a.m.10 views

SUSE CVE-2026-9962

Use after free in WebRTC in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00354EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/28 10:25 p.m.6 views

CVE-2026-9999

Inappropriate implementation in ANGLE in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00225EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/05/28 10:25 p.m.8 views

CVE-2026-9960

Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted font file. Chromium security severity: High...

7.5CVSS6.3AI score0.00235EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/25 2:58 p.m.22 views

CVE-2026-42782 Apache Syncope: Post-auth RCE via Groovy static

Improper Isolation or Compartmentalization vulnerability in Apache Syncope. An administrator with adequate entitlements for Implementations can create a malicious Groovy class containing untrusted code reaching a non-sandboxed execution path via the class static initializer. This issue affects...

0.00652EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2026/05/14 7:52 p.m.6 views

CVE-2026-8577

Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score0.00252EPSS
Exploits0
Cvelist
Cvelistadded 2026/05/14 7:52 p.m.25 views

CVE-2026-8526

Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00383EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/05/08 2:26 a.m.7 views

SUSE CVE-2026-7957

Out of bounds write in Media in Google Chrome on Mac, iOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00291EPSS
Exploits0References3
AlpineLinux
AlpineLinuxadded 2026/05/06 6:13 p.m.7 views

CVE-2026-8016

Use after free in WebRTC in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Low...

8.8CVSS6.2AI score0.00307EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/05/06 12:0 a.m.6 views

PT-2026-38150

Name of the Vulnerable Software and Affected Versions Google Chrome on Mac and iOS versions prior to 148.0.7778.96 Description An out-of-bounds write issue exists in the Media component. This allows a remote attacker who has already compromised the renderer process to execute arbitrary code withi...

9.6CVSS6.2AI score0.00344EPSS
Exploits0References134
CNNVD
CNNVDadded 2026/05/05 12:0 a.m.6 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reuse of the Presentation API after it was released, which could allow remote attackers to execute arbitrary...

8.8CVSS6.2AI score0.00267EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2026/04/28 10:36 p.m.3 views

CVE-2026-7341

Use after free in WebRTC in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00399EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/04/28 10:36 p.m.1 views

CVE-2026-7348

Use after free in Codecs in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6AI score0.00316EPSS
Exploits0References2
NVD
NVDadded 2026/04/15 8:16 p.m.4 views

CVE-2026-6300

Use after free in CSS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00341EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/03/27 9:13 p.m.22 views

CVE-2026-33941 Handlebars.js has JavaScript Injection in CLI Precompiler via Unescaped Names and Options

Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the Handlebars CLI precompiler bin/handlebars / lib/precompiler.js concatenates user-controlled strings — template file names and several CLI options — directly into the JavaScript it...

8.2CVSS0.00293EPSS
Exploits1References3
Rows per page
Query Builder